Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Security kernel or utility
Patent
1997-02-20
2000-08-15
Barron, Jr., Gilberto
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Security kernel or utility
713155, 713168, 713201, G06F 1214
Patent
active
061051322
ABSTRACT:
Methods and systems are provided which control access by a task to an information object in a computer system. The task is authenticated by an authentication procedure to act on behalf of a user. A computer-implemented method includes associating an authentication grade with the authentication procedure, identifying at least one clearance level previously assigned to the user by a clearance administrator, and identifying at least one classification level previously assigned to the information object by a classification administrator. The method then determines the access rights of the task with respect to the information object based at least on the authentication grade, the clearance level, and the classification level. Information about the user's connection to the system may also be considered. The results of the determination are distributed to promote consistent access; rights throughout the system.
REFERENCES:
patent: 3916385 (1975-10-01), Parmar et al.
patent: 4104721 (1978-08-01), Markstein et al.
patent: 4135240 (1979-01-01), Ritchie
patent: 4177510 (1979-12-01), Appell et al.
patent: 4328542 (1982-05-01), Anastas et al.
patent: 4442484 (1984-04-01), Childs, Jr. et al.
patent: 4498131 (1985-02-01), Bratt et al.
patent: 4498132 (1985-02-01), Alhstrom et al.
patent: 4584639 (1986-04-01), Hardy
patent: 4621321 (1986-11-01), Boebert et al.
patent: 4701840 (1987-10-01), Boebert et al.
patent: 4713753 (1987-12-01), Boebert et al.
patent: 4757533 (1988-07-01), Allen et al.
patent: 4809160 (1989-02-01), Mahon et al.
patent: 4858117 (1989-08-01), DiChiara et al.
patent: 4919545 (1990-04-01), Yu
patent: 4926476 (1990-05-01), Covey
patent: 4941175 (1990-07-01), Enescu et al.
patent: 4956769 (1990-09-01), Smith
patent: 4962533 (1990-10-01), Krueger et al.
patent: 4984272 (1991-01-01), McIlroy et al.
patent: 5023773 (1991-06-01), Baum et al.
patent: 5196840 (1993-03-01), Leith et al.
patent: 5202997 (1993-04-01), Arato
patent: 5204961 (1993-04-01), Barlow
patent: 5247517 (1993-09-01), Ross et al.
patent: 5276444 (1994-01-01), McNair
patent: 5287519 (1994-02-01), Dayan et al.
patent: 5313637 (1994-05-01), Rose
patent: 5341422 (1994-08-01), Blackledge, Jr. et al.
patent: 5349642 (1994-09-01), Kinngdon
patent: 5355474 (1994-10-01), Thuraisngham et al.
patent: 5444850 (1995-08-01), Chang
"The SSL Protocol",Anon., Netscape Communications Corporation, 1997.
"LDAP & X.500: Road Map & FAQ", J. Hodges, Distributed Computing and Communication Services, Standford University, Feb. 11, 1997.
"Novera Software, Inc. Announces Support for LDAP Protocol and The Netscape One Platform", PRNewswire, Feb. 10, 1997.
"SLDAP: Secure Lightweight Directory Access Protocol", Anon., Chromatix, Inc., Aug. 12, 1996.
European Search Report, European Patent Office, Oct. 29, 1991.
"Implementing Multilevel Security by Violation Privilege", J. M. Carroll, Computers &Security, vol. 7, No. 6, Dec. 1988, pp. 563-573.
"System V/MLS Labeling and Mandatory Policy Alternatives", C. W. Flink II et al., AT &T Technical Journal, No. 3, May/Jun. 1988, pp. 53-64.
"Reasoning About Knowledge in Multilevel Secure Distributed Systems", J. I. Glasgowm et al., Proceedings 1988 IEEE Symposium on Security and Privacy, Apr. 18-21, 1988, Oakland, California, pp. 122-128.
"Exploiting the Dual Nature of Sensitvity Labels", J. P. L. Woodward, Proceedings 1987 IEEE Symposium on Security and Privacy, Apr. 27-29, 1987, Oakland, California, pp. 23-30.
Andrew S. Tanenbaum, Operating Systems: Design and Implementation, Prentice-Hall, Inc., 1987, pp. 289-297.
"Department of Defense Trusted Computer System Elevation Criteria", DoD 5200.28-STD, Dec. 26, 1985.
H. McGilton et al., Introduction the UNIX System, McGraw-Hill Book Co., 1983, pp. 75-78.
"Integrity Consideration for Secure Computer Systems", The Mitre Corporation, Deputy for Command and Management Systems, Apr. 1977.
Additional Information Regarding MAC Systems.
Fritch Daniel Gene
Green Tammy Anita
Schell Roger R.
Barron Jr. Gilberto
Novell Inc.
LandOfFree
Computer network graded authentication system and method does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Computer network graded authentication system and method, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Computer network graded authentication system and method will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2019097